Executive Summary

Informations
NameMDVSA-2009:308First vendor Publication2009-12-03
VendorMandrivaLast vendor Modification2009-12-03
Severity (Vendor) N/ARevisionN/A

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score7.5Attack RangeNetwork
Cvss Impact Score6.4Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Multiple vulnerabilities has been found and corrected in gnutls:

gnutls-cli in GnuTLS before 2.6.6 does not verify the activation and expiration times of X.509 certificates, which allows remote attackers to successfully present a certificate that is (1) not yet valid or (2) no longer valid, related to lack of time checks in the _gnutls_x509_verify_certificate function in lib/x509/verify.c in libgnutls_x509, as used by (a) Exim, (b) OpenLDAP, and (c) libsoup (CVE-2009-1417).

A vulnerability have been discovered and corrected in GnuTLS before 2.8.2, which could allow man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority (CVE-2009-2730).

Packages for 2008.0 are being provided due to extended support for Corporate products.

This update fixes this vulnerability.

Original Source

Url : http://www.mandriva.com/security/advisories?name=MDVSA-2009:308

CWE : Common Weakness Enumeration

idName
CWE-310Cryptographic Issues

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:8409
 
Oval ID: oval:org.mitre.oval:def:8409
Title: VMware GnuTLS vulnerability
Description: libgnutls in GnuTLS before 2.8.2 does not properly handle a '\0' character in a domain name in the subject's (1) Common Name (CN) or (2) Subject Alternative Name (SAN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority.
Family: unix Class: vulnerability
Reference(s): CVE-2009-2730
Version: 4
Platform(s): VMWare ESX Server 4.0
Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:10778
 
Oval ID: oval:org.mitre.oval:def:10778
Title: libgnutls in GnuTLS before 2.8.2 does not properly handle a '\0' character in a domain name in the subject's (1) Common Name (CN) or (2) Subject Alternative Name (SAN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority.
Description: libgnutls in GnuTLS before 2.8.2 does not properly handle a '\0' character in a domain name in the subject's (1) Common Name (CN) or (2) Subject Alternative Name (SAN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority.
Family: unix Class: vulnerability
Reference(s): CVE-2009-2730
Version: 5
Platform(s): Red Hat Enterprise Linux 4
CentOS Linux 4
Oracle Linux 4
Red Hat Enterprise Linux 5
CentOS Linux 5
Oracle Linux 5
Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:22748
 
Oval ID: oval:org.mitre.oval:def:22748
Title: ELSA-2009:1232: gnutls security update (Moderate)
Description: libgnutls in GnuTLS before 2.8.2 does not properly handle a '\0' character in a domain name in the subject's (1) Common Name (CN) or (2) Subject Alternative Name (SAN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority.
Family: unix Class: patch
Reference(s): ELSA-2009:1232-01
CVE-2009-2730
Version: 3
Platform(s): Oracle Linux 4
Oracle Linux 5
Product(s):
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Application121

OpenVAS Exploits

DateDescription
2012-08-10Name : Gentoo Security Advisory GLSA 201206-18 (GnuTLS)
File : nvt/glsa_201206_18.nasl
2012-02-12Name : Gentoo Security Advisory GLSA 201110-05 (gnutls)
File : nvt/glsa_201110_05.nasl
2011-08-09Name : CentOS Update for gnutls CESA-2009:1232 centos4 i386
File : nvt/gb_CESA-2009_1232_gnutls_centos4_i386.nasl
2009-12-10Name : Mandriva Security Advisory MDVSA-2009:308 (gnutls)
File : nvt/mdksa_2009_308.nasl
2009-11-23Name : Debian Security Advisory DSA 1935-1 (gnutls13 gnutls26)
File : nvt/deb_1935_1.nasl
2009-10-11Name : SLES11: Security update for GnuTLS
File : nvt/sles11_gnutls0.nasl
2009-10-10Name : SLES9: Security update for GnuTLS
File : nvt/sles9p5057720.nasl
2009-09-28Name : Fedora Core 11 FEDORA-2009-8565 (gnutls)
File : nvt/fcore_2009_8565.nasl
2009-09-28Name : Fedora Core 10 FEDORA-2009-8622 (gnutls)
File : nvt/fcore_2009_8622.nasl
2009-09-21Name : SuSE Security Summary SUSE-SR:2009:015
File : nvt/suse_sr_2009_015.nasl
2009-09-02Name : CentOS Security Advisory CESA-2009:1232 (gnutls)
File : nvt/ovcesa2009_1232.nasl
2009-09-02Name : FreeBSD Ports: gnutls
File : nvt/freebsd_gnutls4.nasl
2009-09-02Name : FreeBSD Ports: gnutls
File : nvt/freebsd_gnutls5.nasl
2009-09-02Name : RedHat Security Advisory RHSA-2009:1232
File : nvt/RHSA_2009_1232.nasl
2009-09-02Name : Ubuntu USN-809-1 (gnutls26)
File : nvt/ubuntu_809_1.nasl
2009-09-02Name : Mandrake Security Advisory MDVSA-2009:210 (gnutls)
File : nvt/mdksa_2009_210.nasl
2009-06-05Name : Mandrake Security Advisory MDVSA-2009:116 (gnutls)
File : nvt/mdksa_2009_116.nasl
2009-06-05Name : Ubuntu USN-776-2 (kvm)
File : nvt/ubuntu_776_2.nasl
2009-05-25Name : Gentoo Security Advisory GLSA 200905-04 (gnutls)
File : nvt/glsa_200905_04.nasl
0000-00-00Name : Slackware Advisory SSA:2009-290-01 gnutls
File : nvt/esoft_slk_ssa_2009_290_01.nasl

Open Source Vulnerability Database (OSVDB)

idDescription
56960GnuTLS libgnutls X.509 Certificate Multiple Fields NULL Character Spoofing SS...
54625GnuTLS libgnutls_x509 gnutls-cli lib/x509/verify.c _gnutls_x509_verify_certif...

Nessus® Vulnerability Scanner

DateDescription
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2009-1232.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20090826_gnutls_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-06-25Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201206-18.nasl - Type : ACT_GATHER_INFO
2011-10-12Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201110-05.nasl - Type : ACT_GATHER_INFO
2010-02-24Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1935.nasl - Type : ACT_GATHER_INFO
2010-02-15Name : The remote SuSE system is missing a security patch for gnutls
File : suse_11_2_gnutls-100208.nasl - Type : ACT_GATHER_INFO
2009-12-04Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2009-308.nasl - Type : ACT_GATHER_INFO
2009-11-23Name : The remote VMware ESXi / ESX host is missing one or more security-related pat...
File : vmware_VMSA-2009-0016.nasl - Type : ACT_GATHER_INFO
2009-10-19Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2009-290-01.nasl - Type : ACT_GATHER_INFO
2009-10-06Name : The remote SuSE system is missing the security patch gnutls-6471
File : suse_gnutls-6471.nasl - Type : ACT_GATHER_INFO
2009-09-28Name : The remote Fedora host is missing a security update.
File : fedora_2009-8622.nasl - Type : ACT_GATHER_INFO
2009-09-28Name : The remote Fedora host is missing a security update.
File : fedora_2009-8565.nasl - Type : ACT_GATHER_INFO
2009-09-24Name : The remote SuSE 11 host is missing one or more security updates.
File : suse_11_gnutls-090901.nasl - Type : ACT_GATHER_INFO
2009-09-24Name : The remote SuSE 9 host is missing a security-related patch.
File : suse9_12501.nasl - Type : ACT_GATHER_INFO
2009-09-09Name : The remote SuSE system is missing a security patch for gnutls
File : suse_11_1_gnutls-090901.nasl - Type : ACT_GATHER_INFO
2009-09-09Name : The remote SuSE system is missing a security patch for gnutls
File : suse_11_0_gnutls-090901.nasl - Type : ACT_GATHER_INFO
2009-08-27Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2009-1232.nasl - Type : ACT_GATHER_INFO
2009-08-27Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2009-1232.nasl - Type : ACT_GATHER_INFO
2009-08-24Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2009-210.nasl - Type : ACT_GATHER_INFO
2009-08-20Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-809-1.nasl - Type : ACT_GATHER_INFO
2009-08-20Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_b31a1088460f11dea11a0022156e8794.nasl - Type : ACT_GATHER_INFO
2009-08-20Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_856a6f848b3011de806200e0815b8da8.nasl - Type : ACT_GATHER_INFO
2009-05-26Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-200905-04.nasl - Type : ACT_GATHER_INFO
2009-05-19Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2009-116.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
DateInformations
2014-02-17 11:41:00
  • Multiple Updates